Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative Update 8 and 9 and SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, aka "Exchange Spoofing Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Exchange Server 欺骗漏洞
Vulnerability Description
Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序。Outlook Web Access(OWA)是其中的一个可选组件,为用户提供访问Exchange mailbox的Web接口,允许用户通过Web浏览器整合电子邮件、语音邮件等。 Microsoft Exchange Server中的OWA存在欺骗漏洞,该漏洞源于程序没有正确清理经特殊设计的电子邮件。经过身份验证的远程攻击者可通过向用户发送经特殊设计的电子邮件,利用该漏洞在受影响的系统上执行HTM
CVSS Information
N/A
Vulnerability Type
N/A